Impact

Successful exploitation of these vulnerabilities typically results in an application-level denial of service but could result in arbitrary code execution. An attacker could potentially run arbitrary code by sending a specially crafted file to a user. [1]

Vulnerable

Recommendations

If you have an old version of SEP that was obtained from UC Berkeley Software Central or an old desktop image, remove SEP immediately and install Microsoft SCEP which is the current anti-virus/anti-malware software licensed for campus users. [3]

If you have paid to license Symantec products (e.g. personal or departmental purchase), upgrade your software per Symantec's instructions. [1]